Monitor vulnerabilities in Kubernetes/OpenShift
You can keep track of security vulnerabilities in your Kubernetes environments on the cluster and workload pages.
Prerequisites
- In Dynatrace, go to your Kubernetes cluster settings page and make sure that Monitor Kubernetes namespaces, services, workloads, and pods is turned on.
- Activate and enable Application Security
- To view code-level vulnerabilities Activate and enable Runtime Application Protection
Vulnerability section
The Vulnerabilities section is displayed on the Kubernetes
Cluster details page
Workloads page
It shows the five most severe related third-party vulnerabilities and code-level vulnerabilities.
Select a vulnerability to view the details and understand the severity and impact of a vulnerability within your environment.
- For a complete list of the detected vulnerabilities for your Kubernetes environment, select Show all third-party vulnerabilities/Show all code-level vulnerabilities.
Example third-party vulnerabilities:
Example code-level vulnerabilities:
If you're missing the security permissions for the selected management zone,
- On the Kubernetes cluster page, the Vulnerabilities section is not displayed.
- On the Kubernetes workload page, the Vulnerabilities tab on the notification bar shows
Not analyzed
.